C3 


Hacking Joomla, Sesi | 


Sitonomy 


Tindakan pertama yang akan kita lakukan adalah bagaimana 
mengetahui apakah sebuah website menggunakan Joomla atau 
bukan. 


Untuk melakukan hal ini, kita memerlukan bantuan dari website 
http://www.sitonomy.com. 


Silakan buka halaman web tersebut. Dari halaman yang muncul, 
masukkan nama website yang ingin Anda periksa, apakah 
menggunakan Joomla atau bukan. 


Misalnya di sini saya memasukkan Joomla.org kemudian klik tombol 
Analyse. 


2 “3 
$ itonomy.com Home 


joomla.org Analyse 


@.g. problogger.net, www.techcrunch.com, mashable.com 





Gambar 2.1. Sitonomy.com 


Berikut hasil yang saya peroleh. Perhatikan pada bagian Blogging 
platform. Dari informasi yang muncul, Anda bisa mengetahui apakah 
sebuah website menggunakan Joomla atau bukan. 


Analysis Results 


Url: oomla.org 

Title: Joomla! 

Description: Joomla! - the dynamic portal engine and content management system 
Server IP: 206.123. 111.172 


Website Components 





Name Description Usage" 
2 Affiliate LinkShare LinkShare provides awide range of online services 214 alternatives 
Networks including search engine marketing, affiliate 


marketing and lead generation 


Blogging Joomla! Joomla! is a free open source CMS for publishing 0.246 alternatives 
Platform dynamic content. 








(-4 Javascript Mootools Mootools a very lightweight javascript framework 14 Yo alternatives 
Libraries used mainly for web2.0 style web applications 

-y Stats tools Google Google Analytics is afree service that allows 634 9 alternatives 

- Analytics tracking and analysis of your blog visitors (where 


their come from and what they do on the site 


xg Programming PHP PHP is a open source scripting programming 39 9b alternatives 
Languages language 
«, Server Apache Apache HTTP Server is a most popular HTTP 63.4 Yo alternatives 
Software server on the World Wide Web 


Gambar 2.2. Platform website 


Mengetahui Versi Joomla 


Informasi mengenai versi Joomla sangat kita perlukan dalam 
melakukan aksi hacking Joomla. Sebab, setiap versi memiliki cara 
yang berbeda dalam aksi hacking-nya. Selain itu, Anda perlu tahu 
versi yang rendah bukan berarti tidak digunakan lagi saat ini. Sebab 
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dari hasil penelusuran yang saya lakukan, masih banyak web yang 
menggunakan Joomla versi awal karena banyak web yang tidak 
melakukan update. Selain itu, sebelum Joomla versi 1.6 di-release 
pada fantastico, Joomla versi 1.0 masih disediakan. Oleh karena 
itulah, kita perlu mengetahui versi Joomla. 


Selain itu, walaupun banyak web yang menggunakan versi terbaru 
tapi masih menggunakan component maupun module untuk Joomla 
versi sebelumnya sebab update untuk module atau komponen 
tersebut tidak tersedia. 








Gambar 2.3. System-Legacy 


Baiklah, kita akan mulai bagaimana mencari tahu versi Joomla. Pada 
dasarnya, informasi versi Joomla disimpan dalam file version.php. 
Sayangnya, kita tidak diizinkan membuka halaman tersebut. File 
version.php tersebut disimpan dalam direktori 
“/includes/version.php” — untuk Joomla  1.0.x atau pada 
“/libraries/joomla/version.php” untuk Joomla versi Joomla! 1.5.x dan 
Joomla! 1.6.x. Lihat Gambar 2.4. 


Seperti yang telah saya jelaskan sebelumnya, kelebihan Joomla 
adalah selain bisa diinstal terlebih dahulu dalam komputer lokal 
(localhost) baru kemudian di-upload pada hosting, Joomla juga bisa 
diinstal secara instan dengan memanfaatkan fasilitas fantastico 
dalam cPanel secara online. Oleh karena itulah, masih banyak web 
yang selain diinstal menggunakan versi 1.5, juga masih banyak yang 
menggunakan versi 1.0. Hal ini karena dalam cPanel juga disediakan 
versi tersebut. Bahkan setelah beberapa lama versi 1.6.x diluncurkan 
(sewaktu buku ini ditulis), Joomla versi 1.6.x masih belum tersedia 
dalam Fantastico cPanel. Lihat Gambar 2.5. 
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r 
(JJ version - Notepad 


lolos 








File Edit Format View Help 





Klphp/"s » @version 
ian $ “ @package 


public SDEV LEVEL 
SBUILD 
SCODENAME 
public SRELDATE 
public SRELTIME 
SRELTZ 


Sthis--RELDATE .'' 








2005 - 2011 Open Source Matters, Inc. All rights reserved. “ @license 

GNU General Public License version 2 or later: see LICENSE.txt “/// No direct 

accessdefined( JPATH BASE?) or die:/”“ “ Version information. “ “ @package 

Joomla. Framework “ @since 1.0 “/class JVersionf /““ @public string Product 
rt Bi 








public SCOPYRIGHT - 'Copyright (C) 2005 - 2011 Open Source Matters. All rights 


reserved.': /““ @public string URL “/ public SURL 

'ca href-"http»/Awww.joomla.org" Joomla! «'a- is Free Software released under the 
GNU General Public License." je “ Method to get the long version 
information. “ “ @retum string Long format version. — “/ 

public function getLongVersion) — £ retum Sthis-sPRODUCT 
' Sthis-“RELEASE ."' Sthis--DEV LEVEL .'' 


Sthis--DEV STATUS 


Sid: version.php 20261 2011-01-10 19-52-34Z 
Joomla.Framework " @copyright Copyright (C) 


|» 


m 


/“x @public int build Number “/ public 

jex @public string Codename "/ public 

Pex @public string Date "/ FP 
Pex @public string Time "/ 

jxx @public string Timezone "/ public 

j“t @public string Copyright Text "/ 


? |-Sthis-sCODENAME ')' 
- Sthis--RELTIME ."' Sthis-“RELTZ: 














Gambar 2.4. Versi Joomla 





KK @ 


Control Fantastico 
Panel 








Navigation 
Fantastico Home 
Control Panel Home 


Blogs 
b2evolution 
Nucleus 
WordPress 


Classifieds 
Noahs Classifieds 


Content Management 
Drupal 
Geeklog 

@ Joomla 1.5 
Mambo 
PHP-Nuke 
phpWCMS 
phpWebSite 
Siteframe 
TYPO3 
Xoops 
Zikula 


Customer Relationship 
Crafty Syntax Live Help 
Help Center Live 


Joomla 1.5 








osTicket 


B8 Joomla! 


..because open source matters 


Short description: Joomla! is one of the most powerful Open 
Source Content Management Systems on the planet. It is used all 
over the world for everything from simple websites to complex 
corporate applications. Joomla! is easy to install, simple to 
manage, and reliable. 


Homepage: http://vwawioomla.ora/ 


Joomla 1.5 support forum 
(We are not associated vith the support forum) 


The developers of Joomla 1.5 are thankful for any donation which 
vill ensure the further development of this application. 
http://vwme.joomla.org/content/ viev/689/79, 


New Installation (1.5.23) 
Disk space reguired: 26.93 MB 
Disk space available: 124.5 MB 
Current installations: 


None 





Gambar 2.5. Fantastico 








Pertama-tama kita akan mencari versi Joomla dengan melihat 
tampilan awal Joomla. 


Kalau Anda membuka sebuah halaman web maka yang muncul 
adalah salah satu seperti di bawah ini, maka Anda bisa menebak 
versi Joomla yang digunakan. Tampilan ini sering muncul sebab 
setelah melakukan instalasi Joomla, terkadang administrator belum 
mengisi web-nya. 


Berikut ini tampilan awal Joomla versi 1.0.x. 





lela es) 








r 
@ jomlaa 10.15 - Mozilla Firefox 








File Edit View History Bookmarks Tools Help, 


GG -c 


jomlaa 10... | (9 jomlaa 10... | (9 jomlaa10.... | (9 jomlaa... x 


RK http://localhost/joomla1.0.15/index.php 7 “| |3-. Google 2 


@ Wecomet.. | (9 Welcomet.. | E Welcomet... | (9 Welcomet... || - 


Home 


Contact Us News Links search. 


NEWSFLASH 


Joomla! 1.0 - Experience the 
Freedom. has never been 
easier to create your own 
dynamic site. Manage all your 
content from the best CMS 
admin interface. 





$& Joomla!" 


OpenSourceMatters 


home of Joomla! 


Links 


Contact Us 


LATEST NEWS 
0 Newsflash 3 
0 Newsflash 1 
9 Newsflash 2 
0 Example News Item 1 
@ Example News Item 4 


POPULAR 

@ Example FAO Item 2 
8 Example FAO item 1 
@ Example News Item 4 
@ Example News Item 4 
@ Example News Item 2 


PotLs 


This Joomla! installation 
WBS .... 
) Absolutely simple 


) Reasonably easy 


) Not straight-forward but | 
worked it out 


Home 
| Ihad to install extra 
server stuff 
ra Warning: Parameter 2 to frontpage() expected to be a reference, value given in CAxampp 5 Ihad no idea and got my 
Intdocsijoomla1.0.15lincludesiCachelLitelFunction.php on line 100 friend to do it 
Wrapper ) My dog ran away with 
the README 


Vote Results 


WHO'S ONLINE 


We have 1 guest online 


























Done 





Pe 
K 





Gambar 2.6. Joomla 1.0 


Atau seperti 
kondisi OFF. 


Gambar 2.7 apabila parameter Display Errors dalam 


Sewaktu instalasi Joomla, permintaan Display Errors dikonfigurasi 
ON hanya sampai pada versi 1.514 maka tampilannya akan 
menampilkan beberapa error pada beberapa tempat, seperti terlihat 
pada Gambar 2.8 untuk Joomla versi 1.5.0 - 1.5.14. 


16 





ii 









































Home 


MAIN MENU 


Home 


Joomla! Liceni 


Joomla! Home 


Joomla! Forums 


OSM Ho 


Done 





LATEST NEWS 


Newsflash 3 
Newsflash 1 
Newsflash 2 
Example News Item 4 
Example News Item 4 


..... 


Home 





POPULAR 
Example FAO Item 2 
Example FAO Item 4 
Example News Item 4 
Example News Item 1 
Example News Item 2 


NEWSFLASH 


'Aoccdrnig to a rscheearch at 
an Elingsh uinervtisy, it deosnt 
mitaer in waht oredr the Iteers 
ina wrod are, the olny 
iprmoetnt tihng is taht frist and 
Isat Itteer is at the rghit pclae 
The rset can be a toati mses 
and you can stllraed # wouthit 
porbelm. Tihs is bcuseae we 


S8 Joomla! 


PoLLs 
This Joomla! installation 
WBS 
9) Absolutely simple 
D Reasonably easy 
) Not straight-forward but | 
worked it out 


@ had to install extra 
server stuff 


) Ihad no idea and got my 
friend to do it 


) My dog ran away with 
the README 
Vote Results 


WHO'S ONLINE 


(@ jomlaa 1.0.1 - Mozilla Firefox ta lele 
le Edit View History Bookmarks Tools Help 
@- C G4 http://localhost/joomlal.011/indexphp Kg 2 
| @iomba...x | @iomba10.. | @iomlaa10...| @diomlaa10...| G9 Wecomet..| (9 Wecomet.. | G9 Wekcomet.. | GO Welcomet..| fl» «| - 
Contact Us News Links search 


1 
































Gambar 2.7. Joomla 1.0 Display Error Off 





r Z5 
(@ Welcome to the Frontpage - Mozilla Firefox 





File Edit View History Bookmarks Tools Help 


Cc A 








| https//localhost/joomlal.5:14/ 











“Itu | (9 Welcomet.. | K9 Welcomet.. | (9 Welcomet.. 


Joomla! makes it easy to launch a Web site of any kind. Whether you wanta brochure 
site or you are building a large online community, Joomla! allows you to deploy a new 
site in minutes and add extra functionality as you need it. The hundreds of available 
Extensions will help to expand your site and allow you to deliver new services that 


because open source matters 


extend your reach into the Internet. 


Main Menu 


Warning: Parameter 1 to 
modMainMenuHelper:buil 
expectedto bea 
reference, value given in 
Caxamppihtdocs 
Yoomla1.5.14/libraries 
Noomlaicachelhandler 
Icallback.php on line 99 


Resources 


Warning: Parameter 1 to 
modMainMenuHelper:buil 
expectedto bea 
reference, value given in 
Cixamppihtdocs 
Yoomla1.5.14libraries 
Yoomlaicachelhandler 
ieallhark nhn.onlina 00 
Done 





About Joomla! Features 


Latest News 


Joomla! License Guidelines 
Content Layouts 

The Joomla! Community 
Welcome to Joomla! 
Newsflash 4 


News The Community 


Popular 


Joomla! Overview 
Extensions 

Joomla! License Guidelines 
Welcome to Joomla! 

Nhats New in 1.5? 





Welcome to the Frontpage 
Joomla! Community Portal 


The Joomla! Community Portal is now online. There, you will find a constant source 


gatgf information about the ac£tivities of contributors powering the Joomla! Project Leam 


about Joomla! Events worldwide, and see if there is a Joomla! User Group nearby. 


The Joomla! Community Magazine promises an interesting overview of feature 
articles, community accomplishments, learning topics, and project updates each 
month. Also, check out JoomlaConnect. This aggregated RSS feed brings together 
Joomla! news from all over the worid in your language. Get the latest and greatest by 
cirkinn hara 


Polls 


Joomla! is used for? 
» Community 
Sites 
Public Brand 
Sites 





) eCommerce 
Blogs 
) Intranets 


) Photo and Media 
Sites 


m 


kal 














e”— 





Gambar 2.8. Joomla versi 1.5.0 - 1.5.14 














Namun, apabila setting PHP diganti menjadi OFF maka tampilannya 
menjadi seperti berikut ini. 





r TTL LL 
(& Welcome to the Frontpage - Mozilla Firefox ma lele as 


File Edit View History Bookmarks Tools Help 


G- (sa ani http://localhost/joomla1.5.14/ AL - 


4 ta | @Welcomet... | (9 Welcomet... @ Wacomet.. | @ Weicomet... | (9 Welcome t.. | (9 Welcome... | (9 Welcomet... | E9 Welco... x || |- 














R : Joomla! 1.5 - Experience the Freedom. Ithas never been easier to create your own 


JoomIA | dynamic Web site. Manage all your content from the best CMS admin interface andin 
IX 4 virtually any language you speak 
because oper 


m 


1source matters 
About Joomla! Features News The Community 
search. P 


Latest News Popular 


@ Joomla! License Guidelines @ Joomla! Ov 
@ Content Layouts » Extensio 


Home 
s 
ana ra . Ine Joomla Community @ Joomla! License Guidelines 
2 # Welcome to Joomla! come to Joomla! 
» Newsflash 4 » Whats Newin 1.5? 








Key Concepts 


Welcome to the Frontpage Polis 
Login Form Joomla! Community Portal KS Joomla!isused for? 
je 2 Community 
Username Sites 
Public Brand 
2 The Joomla! Community Portal is now online. There, you will find a constant source Sites 
Sambal of information about the activities of contributors powering the Joomla! Project Leam 
about Joomla! Events worldwide, and see ifthere is a Joomla! User Group nearby @ eCommerce 
Rememberme FI The Joomla! Community Magazine promises an interesting overview of feature ) Blogs 
| articles, community accomplishments, learning topics, and project updates each Intranets 
Login | month. Also, check out JoomlaConnect. This aggregated RSS feed brings together 
| Joomla! news from all over the worid in your language. Get the latest and greatest b Photo and Media x 


























Gambar 2.9. Setting PHP Off 


Untuk Joomla versi 1.5.15 permintaan Display Errors sudah menjadi 
Off. Walau demikian, meskipun setting Display Errors diganti 
menjadi On, halaman Joomla tidak menampilkan error lagi. Berikut 
tampilan awal Joomla versi 1.5.15 ke atas. Lihat Gambar 2.10. 


Sedangkan Gambar 2.11 merupakan tampilan awal Joomla versi 
1.6.x. 
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n — —- “—— .—— M1 
(@ Welcome to the Frontpage - Mozilla Firefox S3 ea 


File Edit View History Bookmarks Tools Help 
@ - CG (GM http://localhost/joomla1.5.15/ 


4 @ Welcomet... | (9 Welcomet... | @9 Welcome... (9 Welcomet... | (9 Welcomet. 













With a library ofthousands of free Extensions, you can add what you need as your site 


K Joomla | grows. Dont wait, look through the Joomla! Extensions library today. 
JA . 


because open source matt 























About Joomla! Features News The Community 





Main Menu Latest News Popular 


Joomla! Overview 
Extensions 

Joomla! License Guidelines 
Welcome to Joomla! 

What's New in 1.5? 


@ Joomla! License Guidelines 
@ Content Layouts 

# The Joomla! Community 

. 


Home 

Joomla! Overview 
Joomla! License 
More about Joomla! 
FAO 

The News 

Web Links 


News Feeds Welcome to the Frontpage Polis 


Joomla! Community Portal KG | Joomla! is used for? 


A Community 
Resources Sites 





'elcome to Joomla! 
Newsflash 4 





..... 


. Public Brand 
Joomlal Home The Joomla! Community Portal is now online. There, you will find 3 constant source 


! Sites 
Pan Focima of information about the activities of contributors powering the Joomla! Project Learn 
Oon. about Joomla! Events woridwide, and see if there is a Joomla! User Group nearby eCommerce 
Documentation 
! The Joomla! Community Magazine promises an interesting overview of feature Blogs 
Joomla! Community 
Joomla! Magazine articles, community accomplishments, learning topics, and project updates each Inanets 
OSM Home month. Also, check out JoomlaConnect. This aggregated RSS feed brings together 
A 2 Joomla! news from all over the world in your language. Getthe latest and greatest bs Photo and Media - 



































Gambar 2.10. Display Errors Off 








r hi 
(@ Home - Mozilla Firefox Sa jera 


File Edit View History Bookmarks Tools Help 


@- & AR http://localhost/joomlal.6.0/ 


“Itu | 9 Welcomet... | €9 Welcome 








Welcome t... | (9 Welcome... 





Welcome t. 





Font size Bigger | Reset | Smaller Search f 


HOME SAMPLE SITES JOOMLA.ORG 


?? Joomla!" 


Open Source Content Management 





You are here: Home 


About Joomla! Joomla! 


Getting Started Congratulations! You have a Joomla! site! Joomla! makes your site easy to build a website just the 


PPAT ABAN way you want it and keep it simple to update and maintain 
sing Joomla 


Joomla! is a fexible and powerful platform, whether you are building a small site for yourself or a huge 
The Joomla! Project 
site with hundreds of thousands of visitors. Joomla is open source, which means you can make it work 


The Joomla! Community just the way you want it to 





Done 


























Gambar 2.11. Joomla 1.6 


Cara lain untuk mengetahui versi Joomla adalah dengan melihat title 
bar pada browser. Untuk Joomla versi 1.x yang tertera adalah sesuai 
dengan judul homepage yang dibuat oleh administrator sewaktu 
melakukan instalasi. 


Sedangkan untuk Joomla 1.5.x menggunakan pesan Welcome to the 
Frontpage. 


Dan pada Joomla 1.6.x menampilkan pesan Home. 


@ jomlaa 1.0.15 - Mozilla Firefox 
File Edit View History Bookmarks Tools Help 


-— “ (& & http://localhost/joomla1.0.15/index.php 


(3 iomlaa &3 iomlaa Ida @9 iomlaa 3 uns (3 iomlaa... x Welcome t... Weh 





@ Welcome to the Frontpage - Mozilla Firefox 





File Edit View History Bookmarks Tools Help 
-— ” & N http://localhost/joomla1.5.23/ 


4 3 Welcomet... (@ Welcomet... 3 Welcome t... 3 Welkcomet... (@ Welcomet... te 






Home - Mozilla Firefox 





File Edit View History Bookmarks Tools Help 
-— is & AN http://localhost/joomla1.6.0/ 


4 Welcome t... | &9 Welcome t... Welcome t... Welcome t... 


Gambar 2.12. Perbedaan homepage tiap versi joomla 


Mencari Halaman Login 
Administrator 


Halaman administrator adalah halaman yang digunakan sebagai 
gerbang untuk mengakses back end. Secara default halaman login 
administrator Joomla adalah dengan menambahkan string 
administrator di belakang nama web Joomla. Contohnya: 
http://www.nama-web.com/administrator 


Namun, pada beberapa kasus banyak administrator yang memani- 
pulasi halaman tersebut menjadi nama lain supaya tidak bisa dilacak 
oleh tangan-tangan jahil. 
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Joomla! Administration Login 


Use a valid username and 
password to gain access to Username 
the Administrator Back-end. 


Password 
Return to site Home Page 











Language | Defauk x 
(1 ae 


Gambar 2.13. Halaman login 





Ada beberapa cara yang bisa digunakan untuk mencari halaman 
login tersebut. Pertama-tama di sini kita akan menggunakan sebuah 


script perl. Oleh karena itu, Anda perlu menginstal program Perl 
terlebih dahulu. 


Sebelumnya, Anda perlu men-download program yang bernama 
ActivePerl. Anda bisa memperolehnya dari http://perl.org atau 
http://www.activestate.com. 





(@ The Peri Programming Language - www.perl.org - Mozilla Firefox —.—m bela 














Eile Edit View History Bookmarks Tools Help 





Cc (SP http//www.perl.org/ Cg “ NS- Google 
.2l Most Visited | | Getting Started 1 Latest Headlines 


AAS Perl, Pythonand Tcl- Dynamic Lan... « | 4@ The Perl Programming Language ... x | -- 






2 The Perl Programming Language 


Current Perl version Is 


5.12.3 - download now 


Learn 


Flexible & Powerful 


Documentation 





) Get started JB DOWNLOAD PERL Iii 
” 

















Community 
' . 3 5 G Events 
Perlis a highly capable, feature-rich programming language with over 23 years of 
development. More about why we love peri... Sponsor 
digital craftsmen 
- Learning Perl The Peri Community 
KCP with free online books, over 21,000 Perl has an active world wide 
extension modules, and a large community with over 300 local bespoke hosting services 
developer community, there are groups, mailing lists and 
many ways to learn Perl. support/discussion websites. 
" Documentation Contribute to Perl 
& Core documentation, FAOs and Perl is being actively developed. » 
|l Done 
FT  — —— 5 






































Gambar 2.14. Perl.org 
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Setelah Anda mendapatkan file instalasi ActivePerl, segera lakukan 
instalasi. Sekarang ikuti petunjuk berikut ini untuk menggunakannya: 


1. Buka halaman Notepad lalu masukkan script berikut ini. 
Simpan dengan nama admin.pl. 


#!/usr/bin/perl 


## 

# By Tartou2 

# Admin Control Panel Finder 

# Home: www.next-next-future.com 
## 


use HTTP: :Reguest:j 
use LWP: :UserAgent: 


system( 'cls'): 
system('title Admin Control Panel Finder Coded by Tartou2 
from www.next-next-future.com' ): 


ore as 

print 

"XXKEKKKKK KK KK K KK K KK KKKKKKKKKKKKKKKK 
SEK ya 





jenang. Admin Control Panel Finder v 
1 An" : 

pln Coded By Tartou21n" 
print " website:www.next-next- 


future.comnin" 

pr 1 Nnt " XXXXXXXKK KK KK KK 
ea at! 

rela “Na 


print " Enter the website you want to scan An": 

print" e.g.: www.domaine.com or www.domaine.com/pathin" : 
joreae 5 UG 

Ssite-xSTDIN-: 

chomp Ssite: 


joreaae Vga Mate 

print " Enter the coding language of the website An": 
ola S0. ASO, Ino, Siam, C7 Ya! $ 

print" If you don't know the launguage used in the coding 
tkenssampyst pe any LA as 

print" --—» ", 

Scode-sSTDIN» : 

chomp (Scode) : 


11 ( Ssies Is /amebosy ) 
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Sense — “Tato SEA 


5 

ae ( Ssaeo Ie /N/S IE 
Sera — Setra. 1/15 

y 


jorelae Da $ 


print "-»The website: Ssiteln": 

print "-»Source of the website: Scodeln": 
print "-»Scan of the admin control panel is 
progressing...Nn/nin" : 


if (Scode eg "asp") | 


@Apath1-(' admin/','backoffice/','admin/', 'administrator/' 
,'moderator/', 'webadmin/', 'adminarea/', 'bb- 
admin/','adminLogin/','admin area/', 'panel- 
administracion/','instadmin/', 'memberadmin/','administrat 
orlogin/','adm/', 'account.asp', 'admin/account.asp','admin 
/index.asp', 'admin/login.asp', 'admin/admin.asp', 'admin ar 
ea/admin.asp','admin area/login.asp', 'admin/account .html' 
,'admin/index.html', 'admin/login.html', 'admin/admin.html' 
,'Yadmin area/admin.html','admin area/login.html','admin a 
rea/index.html','admin area/index.asp', 'bb- 
admin/index.asp', 'bb-admin/login.asp', 'bb- 
admin/admin.asp', 

'bb-admin/index.html', 'bb-admin/login.html', 'bb- 
admin/admin.html','admin/home.html','admin/controlpanel.h 
tml', 'admin.html', 'admin/cp.html', 'cp.html', 'administrato 
r/index.html', 'administrator/login.html', 'administrator/a 
ccount.html','administrator.html','login.html', 'modelsear 
ch/login.html', 'moderator.html', 'moderator/login.html','m 
oderator/admin.html','account.html','controlpanel.html',' 
admincontrol.html','admin login.html','panel- 
administracion/login.html','admin/home.asp', 'admin/contro 
Ipanel.asp', 'admin.asp', 'pages/admin/admin- 

login.asp', 'admin/admin-login.asp', 'admin- 
login.asp','admin/cp.asp', 'cp.asp', 
'administrator/account.asp', 'administrator.asp','login.as 
p', 'modelsearch/login.asp', 'moderator.asp', 'moderator/log 
in.asp','administrator/login.asp', 'moderator/admin.asp',' 
controlpanel.asp', 'admin/account.html','adminpanel.html', 
'webadmin.html', 'pages/admin/admin- 

login.html', 'admin/admin- 

login.html', 'webadmin/index.html', 'webadmin/admin.html',' 
webadmin/login.html','user.asp', 'user.html', 'admincp/inde 
x.asp', 'admincp/login.asp', 'admincp/index.html', 'admin/ad 
minLogin.html','adminLogin.html','admin/adminLogin.html', 
'home.html', 'adminarea/index.html', 'adminarea/admin.html' 
,'adminarea/login.html', 'panel- 
administracion/index.html','panel- 
administracion/admin.html', 'modelsearch/index.html', 'mode 
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lsearch/admin.html','admin/admin login.html', 'admincontro 
1/login.html','adm/index.html', 'adm.html','admincontrol.a 
sp','admin/account.asp', 'adminpanel.asp', 'webadmin.asp',' 
webadmin/index.asp', 'webadmin/admin.asp', 'webadmin/login. 
asp','admin/admin login.asp','admin login.asp', 'panel- 
administracion/login.asp', 'adminLogin.asp', 
'admin/adminLogin.asp', 'home.asp', 'admin.asp', 'adminarea/ 
index.asp','adminarea/admin.asp', 'adminarea/login.asp','a 
dmin-login.html', 

'panel-administracion/index.asp', 'panel- 
administracion/admin.asp', 'modelsearch/index.asp', 'models 
earch/admin.asp', 'administrator/index.asp', 'admincontrol/ 
login.asp', 'adm/admloginuser.asp', 'admloginuser.asp', 'adm 
in2.asp','admin2/login.asp', 'admin2/index.asp', 'adm/index 
.asp', 'adm.asp','affiliate.asp', 'adm auth.asp', 'memberadm 
in.asp','administratorlogin.asp', 'siteadmin/login.asp','s 
iteadmin/index.asp', 'siteadmin/login.html' 

hg 


foreach Sways (@pathl) ( 
Sfinal-Ssite.Sways: 

my Sreg-HTTP: :Reguest-»new(GET-»Sfinal): 
my Sua-LWP: :UserAgent-»new(): 


Sua-ztimeout (30) : 
my Sresponse-$ua-»reguest (Sreg): 

















if (Sresponse-»content -- /Username/ || 
Sresponse-»scontent -- /Password/ 
Sresponse-»content -- /username/ 
Sresponse-scontent -- /password/ 
Sresponse-»content -- /USERNAME/ 
Sresponse-scontent -- /PASSWORD/ 
Sresponse-»content -- /Senha/ 
Sresponse-»content -- /senha/ 
Sresponse-scontent -- /Personal/ 
Sresponse-»content -- /Usuario/ | 
Sresponse-scontent -- /Clave/ 
Sresponse-»content -- /Usager/ || 
Sresponse-»content -- /usager/ || 
Sresponse-scontent -- /Sing/ 
Sresponse-scontent -- /passe/ 
Sresponse-scontent -- /PN/W/ 
Sresponse-scontent -- /Admin Password/ 
)£ 

print " An (#J Found -» Sfinallmin", 
print " In Congratulation, this admin login page is 





working. “nln Good luck from Tartou2 Amin", 
relset 
print "(-)J Not Found «- Sfinalln": 
5 
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if (Scode eg "cfm") 4 


Apath1-(' admin/','backoffice/','admin/', 'administrator/' 
,"moderator/', 'webadmin/', 'adminarea/', 'bb- 
admin/','adminLogin/','admin area/', 'panel- 
administracion/','instadmin/', 'memberadmin/', 'administrat 
orlogin/"','adm/', 'account.cfm', 'admin/account.cfm', 'admin 
/index.cfm', 'admin/login.cfm', 'admin/admin.cfm', 'admin ar 
ea/admin.cfm','admin area/login.cfm', 'admin/account .html' 
,'admin/index.html', 'admin/login.html', 'admin/admin.html' 
,'admin area/admin.html','admin area/login.html','admin a 
rea/index.html','admin area/index.cfm', 'bb- 
admin/index.cfm', 'bb-admin/login.cfm' , 'bb- 
admin/admin.cfm', 

'bb-admin/index.html', 'bb-admin/login.html', ' bb- 
admin/admin.html','admin/home.html','admin/controlpanel.h 
tml', 'admin.html', 'admin/cp.html', 'cp.html', 'administrato 
r/index.html', 'administrator/login.html','administrator/a 
ccount.html','administrator.html','login.html', 'modelsear 
ch/login.html', 'moderator.html', 'moderator/login.html','m 
oderator/admin.html','account.html','controlpanel.html',' 
admincontrol.html','admin login.html','panel- 
administracion/login.html','admin/home.cfm','admin/contro 
lpanel.cfm', 'admin.cfm', 'pages/admin/admin- 
login.cfm','admin/admin-login.cfm', 'admin- 

Logan an" "asia Ce am", Koo ea, 
'administrator/account.cfm','administrator.cfm','login.cf 
m','modelsearch/login.cfm', 'moderator.cfm', 'moderator/log 
in.cfm','administrator/login.cfm', 'moderator/admin.cfm',' 
controlpanel.cfm','admin/account.html','adminpanel.html', 
'webadmin.html', 'pages/admin/admin- 

login.html', 'admin/admin- 

login.html', 'webadmin/index.html', 'webadmin/admin.html',' 
webadmin/login.html','user.cfm','user.html', 'admincp/inde 
x.cfm','admincp/login.cfm', 'admincp/index.html','admin/ad 
minLogin.html','adminLogin.html','admin/adminLogin.html', 
'home.html', 'adminarea/index.html', 'adminarea/admin.html' 
,'adminarea/login.html','panel- 
administracion/index.html','panel- 
administracion/admin.html', 'modelsearch/index.html' , 'mode 
lsearch/admin.html','admin/admin login.html', 'admincontro 
1/login.html', 'adm/index.html','adm.html', 'admincontrol.c 
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fm','admin/account.cfm', 'adminpanel.cfm', 'webadmin.cfm',' 
webadmin/index.cfm', 

'webadmin/admin.cfm', 'webadmin/login.cfm', 'admin/admin lo 
gin.cfm','admin login.cfm','panel- 
administracion/login.cfm','adminLogin.cfm', 'admin/adminLo 
gin.cfm','home.cfm', 'admin.cfm','adminarea/index.cfm','ad 
minarea/admin.cfm','adminarea/login.cfm','admin- 

Logam Inem", 

'panel-administracion/index.cfm', 'panel- 
administracion/admin.cfm', 'modelsearch/index.cfm', 'models 
earch/admin.cfm','administrator/index.cfm', 'admincontrol/ 
login.cfm','adm/admloginuser.cfm', 'admloginuser.cfm', 'adm 
in2.cfm','admin2/login.cfm', 'admin2/index.cfm', 'adm/index 
.cfm', 'adm.cfm','affiliate.cfm', 'adm auth.cfm', 'memberadm 
in.cfm','administratorlogin.cfm','siteadmin/login.cfm','s 
iteadmin/index.cfm', 'siteadmin/login.html' 

)$ 


foreach Sways (@pathl) ( 
Sfinal-Ssite.Sways: 

my Sreg-HTTP: :Reguest-»new(GET-»Sfinal): 
my Sua-LWP: :UserAgent-»new(): 


Sua-ztimeout (30) : 
my Sresponse-S$ua-»reguest (Sreg): 




















if (Sresponse-»content -- /Username/ || 
Sresponse-scontent -- /Password/ 
Sresponse-»content -- /username/ 
Sresponse-»content -- /password/ 
Sresponse-»content -- /USERNAME/ 
Sresponse-scontent -- /PASSWORD/ 
Sresponse-»content -- /Senha/ 
Sresponse-»content -- /senha/ 
Sresponse-»scontent -- /Personal/ 
Sresponse-»content -- /Usuario/ | 
Sresponse-»content -- /Clave/ 
Sresponse-»content -- /Usager/ || 
Sresponse-»content -- /usager/ || 
Sresponse-scontent -- /Sing/ 
Sresponse-scontent -- /passe/ 
Sresponse-scontent -- /PN/W/ 
Sresponse-scontent -- /Admin Password/ 
ht 

print " An (#J Found -» Sfinallmin", 
print " In Congratulation, this admin login page is 


working. “n|n Good luck from Tartou2 Anin", 
relset 
print "(-)| Not Found «- Sfinalln": 
5 
h 
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if (Scode eg "php") £ 


Apath2-(' admin/','backoffice/','admin/', 'administrator/' 
,"moderator/', 'webadmin/', 'adminarea/', 'bb- 
admin/','adminLogin/','admin area/', 'panel- 
administracion/','instadmin/', 
'memberadmin/','administratorlogin/','adm/', 'admin/accoun 
t.php', 'admin/index.php', 'admin/login.php', 'admin/admin.p 
hp', 'admin/account.php', 

'admin area/admin.php', 'admin area/login.php', 'siteadmin/ 
login.php', 'siteadmin/index.php', 'siteadmin/login.html',' 
admin/account.html','admin/index.html','admin/login.html' 
,'admin/admin.html', 

'admin area/index.php', 'bb-admin/index.php', ' bb- 
admin/login.php', 'bb- 

admin/admin.php', 'admin/home.php', 'admin area/login.html' 
,'Yadmin area/index.html','admin/controlpanel.php', 'admin. 
php', 'admincp/index.asp', 'admincp/login.asp', 'admincp/ind 
ex.html', 'admin/account.html', 'adminpanel.html', 'webadmin 
.html', 'webadmin/index.html', 'webadmin/admin.html', 'webad 
min/login.html','admin/admin login.html', 'admin login.htm 
', 'panel-administracion/login.html', 

admin/cp.php', 'cp.php', 'administrator/index.php', 'admini 
strator/login.php', 'nsw/admin/login.php', 'webadmin/login. 
php', 'admin/admin login.php', 'admin login.php', 'administr 
ator/account.php', 'administrator.php', 'admin area/admin.h 
tml', 'pages/admin/admin-login.php', 'admin/admin- 
login.php', 'admin-login.php', 

'bb-admin/index.html', 'bb-admin/login.html', ' bb- 
admin/admin.html', 'admin/home.html','login.php', 'modelsea 
rch/login.php', 'moderator.php', 'moderator/login.php', 'mod 
erator/admin.php', 'account.php', 'pages/admin/admin- 
login.html', 'admin/admin-login.html', 'admin- 

login.html', 'controlpanel.php', 'admincontrol.php', 'admin/ 
adminLogin.html','adminLogin.html', 'admin/adminLogin.html 
', 'home.html', 'rcjakar/admin/login.php', 'adminarea/index. 
html','adminarea/admin.html', 'webadmin.php', 'webadmin/ind 
ex.php', 'webadmin/admin.php', 'admin/controlpanel.html','a 
dmin.html','admin/cp.html', 'cp.html', 'adminpanel.php' , 'mo 
derator.html','administrator/index.html','administrator/l 
ogin.html','user.html', 'administrator/account.html', 'admi 
nistrator.html','login.html','modelsearch/login.html', 
'moderator/login.html','adminarea/login.html', 'panel- 
administracion/index.html', 'panel- 


kk 
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administracion/admin.html', 'modelsearch/index.html' , 'mode 
lsearch/admin.html', 'admincontrol/login.html','adm/index. 


html','adm.html', 'moderator/admin.html', 


'user.php', 'accou 


nt.html', 'controlpanel.html','admincontrol.html','panel- 
administracion/login.php', 'wp- 
login.php', 'adminLogin.php', 'admin/adminLogin.php', 'home. 
php', 'admin.php', 'adminarea/index.php', 'adminarea/admin.p 
hp', 'adminarea/login.php', 'panel- 
administracion/index.php', 'panel- 
administracion/admin.php', 'modelsearch/index.php', 'models 
earch/admin.php', 'admincontrol/login.php', 'adm/admloginus 
er.php', 'admloginuser.php', 'admin2.php', 'admin2/login.php 





','admin2/index.php', 


'adm/index.php', 'adm.php', 'affiliate.php', 'adm auth.php', 


'memberadmin.php', 'administratorlogin.php' 


)$ 


foreach Sways (@path2) ( 
Sfinal-Ssite.Sways: 


my Sreg-HTTP: :Reguest-»new(GET-»Sfinal): 


my Sua-LWP: :UserAgent-»new(): 


Sua-»timeout (30) : 


my Sresponse-Sua-rreguest (Sreg): 


if (Sresponse-scon 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 
Sresponse-»conten 


) 


Cet 


TO AT ATA MRT AG CAR AG Aoa Tatae Ta Ghe Muat 


-- /Username/ || 
/Password/ 
/username/ 
/password/ 
/USERNAME/ 
/PASSWORD/ 
/Senha/ 
/senha/ 
/Personal/ 
/Usuario/ | 
/Clave/ 
/Usager/ || 
/usager/ || 
/Sing/ 

/passe/ 
/PVMW/ 

/Admin Password/ 

















print " An (#J Found -» Sfinallmin": 


print " In Congra 


relset 





tulation, 
working. /nin Good luck from 1 





print "(-)J Not Found «- Sfinalln": 


, 
, 
5 


this admin login page 
Trartou2 Anin" 


is 
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if (Scode eg "any" ) 4 


Apath1-(' admin/', 'backoffice/', 'account.asp', 'account.cf 
maccoun ame con papa cell adas 
adm.cfm', 'adm.html', 'adm.php', 'adm/', 'adm/admloginuser.as 
p', 'adm/admloginuser.cfm', 'adm/admloginuser.php', 'adm/ind 
ex.asp', 'adm/index.cfm', 'adm/index.html', 'adm/index.php', 
'adm auth.asp', 'adm auth.cfm','adm auth.php', 'admin.asp', 
'admin.cfm','admin.html', 'admin.php', 'admin/', 'admin/acco 
unt.asp', 'admin/account.cfm', 'admin/account .html', 'admin/ 
account .php', 'admin/admin.asp', 'admin/admin.cfm', 'admin/a 
dmin.html','admin/admin.php', 'admin/admin login.asp','adm 
in/admin login.cfm','admin/admin login.html','admin/admin 
“login.php', 'admin/adminLogin.asp', 'admin/admin- 
login.asp', 'admin/adminLogin.cfm','admin/admin- 
login.cfm','admin/adminLogin.html','admin/admin- 
login.html','admin/adminLogin.php', 'admin/admin- 
login.php', 'admin/controlpanel.asp', 'admin/controlpanel.c 
fm', 'admin/controlpanel.html','admin/controlpanel.php','a 
dmin/cp.asp', 'admin/cp.cfm', 'admin/cp.html', 'admin/cp.php 
','admin/home.asp', 'admin/home.cfm', 'admin/home.html','ad 
min/home.php', 'admin/index.asp', 'admin/index.cfm', 'admin/ 
index.html','admin/index.php', 'admin/login.asp', 'admin/lo 
gin.cfm','admin/login.html','admin/login.php', 'admin area 
/','admin area/admin.asp','admin area/admin.cfm','admin a 
rea/admin.html','admin area/admin.php', 'admin area/index. 
asp','admin area/index.cfm','admin area/index.html','admi 
n area/index.php', 'admin area/login.asp', 'admin area/logi 
n.cfm','admin area/login.html','admin area/login.php','ad 
min login.asp','admin login.cfm','admin login.html','admi 
n login.php', 'adminl.asp', 'adminl.html', 'adminl.php', 'adm 
in1/','admin2.asp', 'admin2.cfm', 'admin2.html','admin2.php 
','admin2/index.asp', 'admin2/index.cfm', 'admin2/index.php 
','admin2/login.asp', 'admin2/login.cfm','admin2/login.php 
','admin4 account/','admin4 colon/','adminarea/', 'adminar 
ea/admin.asp', 'adminarea/admin.cfm', 'adminarea/admin.html 
','adminarea/admin.php', 'adminarea/index.asp', 'adminarea/ 
index.cfm','adminarea/index.html', 'adminarea/index.php',' 
adminarea/login.asp', 'adminarea/login.cfm', 'adminarea/log 
in.html','adminarea/login.php', 'admincontrol.asp', 'adminc 
ontrol.cfm','admincontrol.html','admincontrol.php', 'admin 
control/login.asp','admincontrol/login.cfm', 'admincontrol 
/login.html','admincontrol/login.php', 'admincp/index.asp' 
,Yadmincp/index.cfm', 'admincp/index.html', 'admincp/login. 
asp','admincp/login.cfm','administer/','administr8.asp',' 
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administr8.html','administr8.php', 'administr8/','administ 
ratie/','administration.html', 'administration.php', 'admin 
istration/','administrator.asp', 'administrator.cfm', 'admi 
nistrator.html','administrator.php', 'administrator/','adm 
inistrator/account.asp', 'administrator/account.cfm', 'admi 
nistrator/account.html', 'administrator/account.php', 'admi 
nistrator/index.asp','administrator/index.cfm', 'administr 
ator/index.html', 'administrator/index.php', 'administrator 
/login.asp', 'administrator/login.cfm','administrator/logi 
n.html','administrator/login.php', 'administratoraccounts/ 
','administratorlogin.asp', 'administratorlogin.cfm','admi 
nistratorlogin.php', 'administratorlogin/', 'administrators 
/','administrivia/', 'adminLogin.asp', 'admin- 

login.asp', 'adminLogin.cfm','admin- 
login.cfm','adminLogin.html','admin- 

login.html', 'adminLogin.php', 'admin- 

login.php', 'adminLogin/', 'adminpanel.asp', 'adminpanel.cfm 
','adminpanel.html', 'adminpanel.php', 'adminpro/','admins. 
asp','admins.html', 'admins.php','admins/','AdminTools/',' 
admloginuser.asp', 'admloginuser.cfm', 'admloginuser.php',' 
affiliate.asp','affiliate.cfm','affiliate.php', 'autologin 
/', 'banneradmin/', 'bbadmin/', 'bb-admin/', 'bb- 
admin/admin.asp', 'bb-admin/admin.cfm' , 'bb- 
admin/admin.html', 'bb-admin/admin.php' , 'bb- 
admin/index.asp', 'bb-admin/index.cfm' , 'bb- 
admin/index.html', 'bb-admin/index.php' , 'bb- 
admin/login.asp', 'bb-admin/login.cfm' , 'bb- 
admin/login.html', 'bb- 
admin/login.php', 'bigadmin/', 'blogindex/', 'cadmins/', 'ccp 
14admin/','cmsadmin/','controlpanel.asp', 'controlpanel.cf 
m','controlpanel.html','controlpanel.php', 'controlpanel/ ' 
ep ASN Cp en cp hem op -php cPanel panel 
ile/','customer login/', 'database administration/"', 'direc 
tadmin/','dir- 

login/','ezsgliteadmin/', 'fileadmin.asp', 'fileadmin.html' 
,'fileadmin.php', 'fileadmin/"','formslogin/', 'globes admin 
/', 'home.asp', 'home.cfm', 'home.html', 'home.php', 'hpwebjet 
admin/"','Indy admin/','instadmin/','irc- 
macadmin/','LiveUser Admin/','login.asp','login.cfm','log 
ana laten , Tikogopilajolato)! , " Ikofopalaat (elo V, DIkofoptatil yh “Ikon ilane// 3 
login-redirect/', 'login- 

us/','logo sysadmin/','Lotus Domino Admin/', 'macadmin/',' 
manuallogin/', 'memberadmin.asp', 'memberadmin.cfm' , 'member 
admin.php', 'memberadmin/','members/', 'memlogin/', 'meta lo 
gin/', 'modelsearch/admin.asp', 'modelsearch/admin.cfm' , 'mo 
delsearch/admin.html', 'modelsearch/admin.php', 'modelsearc 
h/index.asp', 'modelsearch/index.cfm', 'modelsearch/index.h 
tml', 'modelsearch/index.php', 'modelsearch/login.asp', 'mod 
elsearch/login.cfm', 'modelsearch/login.html', 'modelsearch 
/login.php', 'moderator.asp', 'moderator.cfm', 'moderator.ht 
ml', 'moderator.php', 'moderator/', 'moderator/admin.asp','m 
oderator/admin.cfm', 'moderator/admin.html', 'moderator/adm 
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in.php', 'moderator/login.asp', 'moderator/login.cfm' , 'mode 
rator/login.html', 'moderator/login.php', 'myadmin/', 'navSi 
teAdmin/','newsadmin/"','nsw/admin/login.php', 'openvpnadmi 
n/','pages/admin/admin-login.asp', 'pages/admin/admin- 
login.cfm', 'pages/admin/admin- 
login.html', 'pages/admin/admin- 
login.php', 'panel/', 'panel-administracion/', 'panel- 
administracion/admin.asp','panel- 
administracion/admin.cfm','panel- 
administracion/admin.html','panel- 
administracion/admin.php', 'panel- 
administracion/index.asp', 'panel- 
administracion/index.cfm','panel 
administracion/index.html', 'pane 
administracion/index.php', 'panel- 
administracion/login.asp','panel- 
administracion/login.cfm', 'panel- 
administracion/login.html','panel- 
administracion/login.php', 'pgadmin/', 'phpldapadmin/', 'php 
myadmin/','phppgadmin/', 'phpSOLiteAdmin/', 'platz login/', 
'power user/', 'project- 
admins/', 'pureadmin/', 'radmind/', 'radmind- 

1/', 'rejakar/admin/login.php', 'rcLogin/', 'Server.asp', 'Se 
rver.html','Server.php', 'server/', 'server admin small/',' 
ServerAdministrator/', 'showlogin/"', 'simpleLogin/', 'sitead 
min/index.asp','siteadmin/index.cfm', 'siteadmin/index.php 
','siteadmin/login.asp', 'siteadmin/login.cfm', 'siteadmin/ 
login.html', 'siteadmin/login.php', 'smblogin/','sagl- 
admin/"','ss vms admin sm/','sshadmin/', 'staradmin/"','sub- 
login/",'Super- 
Admin/','support login/', 'sysadmin.asp','sysadmin.html',' 
sysadmin.php', 'sysadmin/', 'sys- 
admin/','SysAdmin2/','sysadmins/', 'system administration/ 
','system-administration/','typo3/', 'ur-admin.asp','ur- 
admin.html','ur-admin.php','ur- 
admin/','user.asp','user.html', 'user.php', 'useradmin/','U 
serLogin/"','utility login/', 'vadmind/', 'vmailadmin/', 'web 
admin.asp', 'webadmin.cfm','webadmin.html', 'webadmin.php', 
'WebAdmin/', 'webadmin/admin.asp', 'webadmin/admin.cfm', 'we 
badmin/admin.html','webadmin/admin.php', 'webadmin/index.a 
sp', 'webadmin/index.cfm', 'webadmin/index.html', 'webadmin/ 
index.php', 'webadmin/login.asp', 'webadmin/login.cfm', 'web 
admin/login.html', 'webadmin/login.php', 'wizmysgladmin/',' 
wp-admin/"','wp-login.php', 'wp- 

login/','xlogin/', 'yonetici.asp', 'yonetici.html', 'yonetic 
i.php', 'yonetim.asp', 'yonetim.html', 'yonetim.php', 'panel/ 
Pa-cp' 

)# 

















foreach Sways (@pathl) ( 


Sfinal-Ssite.Sways:, 
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my Sreg-HTTP: :Reguest-»new(GET-»Sfinal): 
my Sua-LWP: :UserAgent-»new(): 
Sua-»timeout (30): 

my Sresponse-Sua-rreguest (Sreg): 




















if (Sresponse-»content -- /Username/ || 
Sresponse-»content -- /Password/ 
Sresponse-scontent -- /username/ 
Sresponse-scontent -- /password/ 
Sresponse-»content -- /USERNAME/ 
Sresponse-scontent -- /PASSWORD/ 
Sresponse-scontent -- /Senha/ 
Sresponse-»content -- /senha/ 
Sresponse-»scontent -- /Personal/ 
Sresponse-»content -- /Usuario/ | 
Sresponse-scontent -- /Clave/ 
Sresponse-»content —- /Usager/ || 
Sresponse-»content -- /usager/ || 
Sresponse-scontent -- /Sing/ 
Sresponse-scontent -- /passe/ 
Sresponse-scontent -- /PN/W/ 
Sresponse-scontent -- /Admin Password/ 
ht 

print " An (#J Found -» Sfinallmn", 
print " Nn Congratulation, this admin login page is 





working. “n|n Good luck from Tartou2 Amin", 
relsef 
print "(-)| Not Found «- Sfinalln": 
5 

5 

ken UuSTtOP ANU) 

5 





## 


2. Setelah itu, bukalah jendela Command Prompt dan pergilah 
ke tempat Anda meletakkan file admin.pl. 


3. Kemudian ketik perl admin.pl 





ES Windows Command Processor 


Microsoft Windows (Version 6.1.76081 
Copyright (c) 2009 Microsoft Corporation. All rights reserved. 


C:NWindous“System32?perl admin.pl 





Gambar 2.15. Menjalankan file pl 
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4. Setelah itu Anda diminta untuk memasukkan nama web 
target kemudian tekan Enter. 





r —J 
BE Admin Control Panel Finder Coded by Tartou2 from www.next-next-future.com bi na 


DOOOOOOOOOOOOOOPOPPOP OPO 


Admin Control Panel Finder v 1 
Coded By Tartou2 
website :uuu.next-next-future .com 


POOOOOONOOOOOOPOOOOOPNNOOPN EME 
Enter the website you want to scan 


e.g.: uywyu.domaine.com or www.domaine.com/path 
——? www.nama—target.com,, 











Gambar 2.16. Admin Control Panel Finder 


5. Lalu Anda juga ditanyakan jenis ekstensi file yang digunakan 
oleh web tersebut. Dalam hal ini Anda bisa mengetahuinya 
melalui Sitonomy yang telah kita jelaskan sebelumnya. Atau 
jika Anda bingung, ketik saja any. 


Enter the coding language of the website 

e.g.: asp. php. cfm, any 

If you don't know the launguage used in the coding then simply type xx any xx 
——) any 





Gambar 2.17. Memilih pemrograman web 


6. Setelah menekan Enter, tunggu proses pencarian halaman 
administrator dilakukan sampai selesai. 





B3 Admin Control Panel Finder Coded by Tartou2 from www.next-next-future.com bi, esa 


Enter the coding language of the vebsite 

e.g.: asp, php, cfm, any 

If you don't know the launguage used in the coding then simply type xx any xx 
-—) any 


—-)The website: http://uuu. —mmmama com 
-)Source of the website: any 


-)Scan of the admin control panel is progressing... 


Not Found http://uuu. .com/. admin/ 

Not Found http: Tg .com/backoff ice” 
Not Found http: .cCom/account.asp 
Not Found http: .cCom/account.cfm 
Not Found http: .cCom/account.html 
Not Found http: 5: .cCom/account .php 











Gambar 2.18. Proses mencari halaman admin 
7. Apabila halaman administrator berhasil ditemukan maka 


akan muncul pesan Congratulations, this admin login page is 
working. 
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I-1 Not Found £- http://uuu .com/administr8 .php 

I-1 Not Found «- LN -cCom/administr8/ 

I-1 Not Found «- T -cCom/administratie/ 

I-1 Not Found «- HA -.cCom/administration.html 
I-1 Not Found «-— PL .com/administration.php 
I-1 Not Found «- 3/ uu -cCom/administration/ 

I-1 Not Found «— T .com/administrator.asp 
I-1 Not Found «- TN -.cCom/administrato 

I-1 Not Found «- Tn -cCom/administrator.html 
I-1 Not Found «-— H n .com/administrator.php 


Lt1 Found — http://uwu. TENEEN - son administrator/ 


Congratulation, this admin login page is working. 
Good luck from Tartou2 


1 Not Found £- http://uuu. .com/administrator/account.asp 
1 Not Found «- 3//u .cCom/administrator/account.cfm 
—1 Not Found «- 3//0u .com/administrator/account.html 
—1 Not Found «-— H NI .com/administrator/account .php 
—1 Not Found «- H PL .com/administrator/index.asp 
1 Not Found £- http://uw .com/administrator/index.cfm 
1 Not Found (— http://uwm .com/administrator/index.html 


L4#1 Found —? http://uuu. 23 .com/administrator/index.php 





Congratulation, this admin login page is working. 
Gambar 2.19. Halaman administrator ditemukan 


Sekarang kita akan menggunakan sebuah tools yang bernama Havij. 
Anda bisa men-download program ini pada 
http://itsecteam.com/en/tools.htm. 








(@ TSecTeam, IT Security Research & Penetration Testing Team - Mozilla Firefox — 
File Edit View History Bookmarks Tools Help 


NS AR http://itsecteam.com/en/indexhtm "H3 Google 2 


ITSecTeam, IT Security Research & P... | -. 
e g z 
P3 oo“ 3 | search | 
«3 3 AON 
JUS “x 
2 (277742 O A 


Ba 
IT Security Research & Penetration Testing Team 





News Vulnerabilities Papers Projects Services Tools Forum Contact teu 


PENA TA SO LGS . 
er ee ' " 
mh 6 z5U13kyBoyd $$ 
Vulnerability Assessment of ch asswordxf |: 
Web Applications and Network Services mi # of we ba pe 
sSSaDe1W 

hz t47, 
ahncu4jyz Kan 















News Vulnerabilities Papers Projects 











Done 














Gambar 2.20. itsecteam.com 
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Setelah mendapatkan program tersebut, lakukan proses instalasi dan 
ikuti langkah di bawah ini untuk menggunakannya: 


1. Pada tampilan pertama Havij akan ditampilkan informasi 
mengenai program tersebut. 

















2 raj — 0 jisesaa 
m 
nah . 
ElSyrtar Auto Detect " 
Daabase (awoboroa 5) Watot (cer z) "yee: (auto Datacr | 
Load Save 
Pos data 
@ - a 2 @ & Tt x 
About & RusdFits GmdS Duery FindAdmin MDS Satings 
Havij - Advanced SOL Injection Tool 
Version 1.14 Free 
“NX Copyright O 2000-2010 
Haluan Sy r3anoa 
saus: In IDLE OlearLog 





avi 1.16 Freet 











Gambar 2.21. Havij 


2. Klik pada tab Find Admin. 


3. Pada bagian Path to search masukkan nama web target 
kemudian klik ikon Start. 























& Hei PE 
Taget —“httpi/lwwutaroet.corVindex.asp?d-123 », m 
Dikemo: A Dismex Ama Datea tata 
Datahore  (putobetest 5) Yete (GET | Voc (autonetess 1 0g 
Pasi Data: ena 
Ata setings 

» 
WebApps “ohorasp Ihesde 5 Har 
Tinecat 10 aties “1 
page Response 
Situs ImIDLE Oeaitag 


avi 212 Fresi 





Gambar 2.22. Menjalankan Hauij 
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4. Tunggu proses pencarian halaman admin dilakukan sampai 
selesai. 




















200,500,301,302,403 WebApps phoyaap Thoads 5 stop 
0 Time out “10 Raties 1 
page Response 
http3/www loin.htm 500 View not found In... 
http4/wwm login.php 500 View not found In... 
http/www login-htrni 200 0K 
http4/ww login/ 200 OK 
http4/www (controipanel/ 301 Moved Permanentiy 
http4/ vw lpanel/ 301 Moved Permanentiy Sg 
Status: ImIDLE Clear Log 














Gambar 2.23. Proses berlangsung 


5. Hasil pencariannya bisa Anda lihat pada bagian Found 
Pages. Perhatikan pada kolom Response yang menunjukkan 
200 OK adalah halaman admin yang berhasil ditemukan. 





Found Pages: 
Page Response 
http://www! login.htm 500 View not found (name, type, prefixJ: login,htm,userView 
http://www! login.php 500 View not found (name, type, prefixJ: login,php,userView 
http://wwwi login.html 200 OK 
http://www! login/ 200 OK 
http://www! controlpanel/ 301 Moved Permanentiy 
http://wwwi cpanel/ 301 Moved Permanentiy 








Gambar 2.24. Halaman administrator ditemukan 
Dengan memperoleh halaman login administrator tersebut, juga bisa 


digunakan untuk mengetahui versi Joomla yang digunakan. Perha- 
tikan gambar di bawah ini untuk melihat perbedaannya. 
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F N Login 
Ta) Ta 


Kemang Kan Ko e—soomta 1.0.x 
Use a valid username and Password 


password to gain access to 
the administration console 





Login 


Joomla! Administration Login 


Use a valid username and 
password to gain access to Username 
the Administrator Back-end 


Password 
Return to site Home Page 
Language | Defautt - Joomla 1.5.x 


Login -) 














in 


Joomla! Administration Login 


Use a valid username and password 
to gain access to the administrator 
backend User Name 


Go to site home page 


Password 
—. Joomla 1.6.x 
£ Language Defauk - 




















Gambar 2.25. Halaman login Joomla 


Khusus untuk Joomla versi 1.0.x, biasanya pada sudut kanan atas 
layar ditampilkan langung versi Joomla tersebut. 


Melacak Posisi Modul 


Ada sebuah cara bagaimana kita bisa melihat posisi modul template 
yang digunakan pada sebuah halaman yang berbasis Joomla. 


Caranya dengan memasukkan nama web joomla pada URL. 


Misalnya: http://www.web-joomla.com/ 
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Kemudian tambahkan parameter berikut ini di belakang URL tersebut 
" Ptp- 1 " 


Jadinya akan seperti ini: http://www.id-joomla.com/?tp-1 


Berikut contoh hasilnya yang saya terapkan pada joomla.org. 


http://www.joomla.org/?tp-1 





(@ joomla! - Mozilla Firefox lea (esa 


File Edit View History Bookmarks Tools Help 
@ MB EK http://www:joomla.org/?tp-1 “9- ge Ps) 


Welcome to the Frontpage x cPanelB11 x.| Bk Joomla! xX | Mi Problem loading page 








Xx Find: file. & Not H Previous & Highlightall (F) Match case 














Gambar 2.26. Posisi modul 


Reset Password Admin 


Sebelumnya kita telah mengetahui cara untuk menemukan halaman 
login administrator. Kali ini kita akan mencoba masuk sebagai 
administrator. Dengan jalan me-reset password admin-nya. 


Di sini saya memperoleh target yang mengandung URL berikut ini: 


index.php?option—-com user&view-reset&layout—confirm. 
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Anda juga bisa memanfaatkan Google untuk mencari target Anda, 
dengan menggunakan syntax berikut: 


inurl:option—com user 


























si 
(@ inurttoption-com.user - Penelusuran Google - Mozilla Firefox Sia 
File Edit View History Bookmarks. Tools Help 
@ NG G3 24 http://www.google.co.id/#g-inur-option9:3Dcom user&hi-id&kprmd-ivns&ei-Ejm2TfTHH43xr0e 17 - | | Pa) 
2g inurtoption-com user - Penelusuran... |“ - 
Web Gambar Maps Berita Terjemahan Buku Gmail selengkapnya v iGoogle | Setelan v | Keluar “ 
- an : : 
AA 1 inur:option-com user Telusuri 
9 £ Laman 10 dari sekitar 8,770,000 hasil (0.44 detik) Google.com in English Penelusuran lanjutan 
21 Semua Bits of News - Gjermund E. Jansen's Bits Page ( Terjemahkan laman ini ) 
3 img. My Friends. 3 friends. img. Alexander G. Rubio, img. Philipe Rubio, img. Geir Is 
M Gambar My Friends. 3 friend Alexander G. Ri Philipe R' Geir E 
Jansen. Gjermund E. Jansen's Bits Page. Site Activity Rating: 345 ... 
AA Berita www.bitsofnews.com/.../option,com user/.../uid,276/ - Amerika Serikat - Tembolok 
”| Lainnya Registered Area “ - | Terjemahkan laman ini ) | 
The main mission of the Kildare EU Club is to provide the space for meetings, information 
Bandar Mataram provision, help with translation, help to newcomers and also ... 
Ubah lokasi www.euclub.org/index.php?option-com user - Tembolok 
play functions.php?phpbb root path-index.php?option-com user 
Web - | Terjemahkan laman ini 
Laman dari Indonesia GorillaArcade.com. Free Games. Home | Contact. Categories ... 
Laman berbahasa asing 9orillaarcade.comJfun.../functions.php?...?option-com. user/1 - Tembolok 
yang telah 
diterjemahkan Register - Starfleet Digital Music Pool the DJ MP3 Record Pool of ... 
- | Terjemahkan laman ini ) 
Yang Lain 20 Apr 2011 ... Starfleet Music Pool is the record pool of record pools. Servicing rap, hip 


hop, reggae, reggaeton and dance music. The record pool features ... 
www.starfleetmusic.com/record.../index.php?option-com user... - Ti 





rutu hirawa marathi//index.php?option-com user/index.php?option ... 
| Terjemahkan laman ini ) 

Download Latest Bollywood Songs Hindi Music Indian Mp3 songs free bollywood 

download songs music mp3. 

www tiptopmovie.com/.../index.php?... - Amerika Serikat - Tembolok 



































|| Waiting for wwwgoogle.co.id.. 





Gambar 2.27. Inurl:option-com. user 


Misalnya, Anda menemukan web target seperti berikut ini. 


http://target.com/index.php?option-com. user&view-resetSlayout- 
confirm 


Atau kalau web target tidak menunjukkan link seperti di atas, Anda 
bisa memasukkan sendiri syntax: 


“index.php?option-com. user&view-resetSlayout-confirm” 
di belakang nama website. 


Maka akan muncul pesan untuk konfirmasi account. 





With a library ofthousands of free Extensions, you can add what you need as your site grows. Dont wait, look through 


t Joomla | the Joomla! Extensions library today, 
TA . 


n source matters 
About Joomla! Features News The Community 


Home search. 


Confirm your account. 


An e-mail has been sent to your e-mail address. The e-mail contains averification token, please paste the token in the field below to 
prove that you are the owner of this account. 


Main Menu 


« Home 

# Joomla! Overview 
@ Joomla! License 

# More about Joomla! 
« FAG 

» The News 

# Web Links 

@ News Feeds 


Token 






Feed Your Brain with... 
Books from the Joomla! Shop 


Key Concepts 


Copyright @ 2011 jomlaa 1.5.15. All Rights Reserved. 

@ Extensions Joomla! is Free Software released under the GNU/GPL License. 
« Content Layouts 

# Example Pages 








Powered by valid and 





Gambar 2.28. Confirm your account 
Masukkan pada bagian token, tanda kutip tunggal (“), lalu klik 
tombol Submit. 


Selanjutnya tampil halaman seperti di bawah ini, yang berguna untuk 
melakukan Reset Password. Sebagai contoh di sini, saya mema- 
sukkan kedua field tersebut dengan “administrator”. 


Setelah selesai, klik tombol Submit. 


Reset your Password 


To complete the password reset process, please enter a new password. 


Password cccocococococ. 





Verify Password: administrator 


Gambar 2.29. Klik Submit 


Apabila berhasil maka akan muncul pesan bahwa password telah di- 
reset. Serta halaman login seperti di bawah ini akan muncul. 


39 


0 Your password has been reset. 


To access the private area ofthis site, please log in. 


Ip ”. 
Ce ——h 
St 
Username 
Password 


Remember Me 


| Login | 





Gambar 2.30. Password berhasil di-reset 


Kini kita bisa mencoba login pada halaman administratornya 
menggunakan password reset yang barusan kita buat tersebut. 
Hanya saja di sini Anda perlu mengetahui nama account dari 
administratornya walaupun password-nya sudah Anda ganti. 


Namun, di sini kita bisa mencoba menggunakan username default 
dari Joomla, yaitu admin. Tapi ada juga situs yang mengubah default 
username-nya menjadi: "administrator”, "webadmin”, "adminweb”, 
dan sekitar-sekitarnya. Namun kebanyakan web tidak mengubah 
admin default tersebut. Termasuk pula pengalaman pahit saya 
sendiri. 


Sedikit pengalaman saja. Sejujurnya, web saya sendiri pernah di- 
deface dengan teknik seperti ini oleh orang lain. Hal ini karena saya 
malas untuk meng-update versi Joomla yang saya gunakan. Hal ini 
menunjukkan tidak semua orang menggunakan Joomla versi 
terbaru. Bahkan dari hasil searching Google yang saya lakukan, saat 
ini pun masih banyak web yang masih menggunakan Joomla versi 
1.0.x. Efek hacking di atas bisa diterapkan pada Joomla sampai 
versi 1.5.5. 
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Terkadang Google tidak mau menampilkan hasil pencarian yang 
menggunakan syntax seperti inurl tersebut. Melainkan hanya 
halaman kosong melompong, atau sewaktu Anda ingin membuka 
halaman hasil pencarian berikutnya, tampilan Google tetap tidak 


berubah. 





r 
(@ inur-option-com user - Penelusuran Google - Mozilla Firefox 





Eile Edit View History Bookmarks Tools Help 
“ie AA hitp//muw.google.co.id/#gzinurtoption#43Dcom.user&hl-idetprmd-ivnstkci-tim2TITHHM3mOe Y - | (Sx Google 





| #inurkoption-com user - Penelusuran ... |“ 
Web Gambar Maps Berita Terjemahan Buku Gmail selengkapnya v 











P .g Wa” : Rang 
Le Ya inur:option-com user Telusuri 


Laman 10 dari sekitar 8,770,000 hasil (0.44 detik) Google.comin English Penelusuran lanjutan 


iGoogle | Setelan v | Keluar “ 


























Gambar 2.31. Google kosong 


Apabila hal ini terjadi, Anda cukup menekan tombol Refresh pada 


browser yang Anda gunakan. 





@ inur:option-com user - Penelusuran Google - Mozilla Firefox 





File Edit View History Bookmarks Tools Help 


@ - Kg AS (29 nttpi//www.google.co.id/8 
R3 | inurkoption- Reload current page jan .— jet | 


Web Gambar Maps Berita Terjemahan Buku Gmail s 











Gambar 2.32. Refresh/Reload 
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